LaGarde StoreFront 5.0 Shopping Cart - login.asp SQL Injection

2003-12-07T00:00:00
ID EXPLOITPACK:5DC72DD4C0BA8016DA475EB308221A47
Type exploitpack
Reporter G00db0y
Modified 2003-12-07T00:00:00

Description

LaGarde StoreFront 5.0 Shopping Cart - login.asp SQL Injection

                                        
                                            source: https://www.securityfocus.com/bid/13998/info

StoreFront Shopping Cart is affected by an SQL injection vulnerability. The vulnerability affects the 'login.asp' script.

Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker to exploit vulnerabilities in the underlying database implementation.

StoreFront Shopping Cart 5.0 is affected by this vulnerability.

The following proof of concept example is available:
Email id: example@example.com
Password: ' or '='